ITNEWS - Aug 26 - A software engineer at payments processor Stripe found a vulnerability in Bumble. By learning how Bumble's application programming interface (API) works, Robert Heaton found a way to pinpoint users' exact location, bypassing the safeguards in the app designed to prevent this. Heaton reported the vulnerability to Bumble via bug bounty site HackerOne. A fix was deployed within 72 hours, and Heaton was awarded $2K, which he donated to charity.
Comments